CVE-2018-9310

An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root (the default). This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
VendorProductVersion
magnicompsysinfo
10-h76 ≤
𝑥
≤ 10-h81
𝑥
= Vulnerable software versions
References
http://www.magnicomp.com/about/2018/CVE-2018-9310.html
http://www.magnicomp.com/about/2018/CVE-2018-9310.html